Improve CI (#268)

* Remove superfluous remote_src. * Use temp dir twice instead of output_dir. * Use remote temp directory instead of output_dir. * Fix syntax error. * Add some fixes. * Copy more files to remote. * More fixes. * Fixing ACME/'cloud' tests. * Forgot when. * Try to fix filters. * Skip unnecessary steps. * Avoid collision.
2026-05-08 06:13:03 +00:00 · 2021-09-07 22:37:40 +02:00
parent 93ced1956c
commit 02ee3fb974
102 changed files with 1501 additions and 1288 deletions
--- a/tests/integration/targets/openssl_dhparam/meta/main.yml
+++ b/tests/integration/targets/openssl_dhparam/meta/main.yml
@@ -1,2 +1,3 @@
 dependencies:
  - setup_openssl
+  - setup_remote_tmp_dir
--- a/tests/integration/targets/openssl_dhparam/tasks/impl.yml
+++ b/tests/integration/targets/openssl_dhparam/tasks/impl.yml
@@ -4,7 +4,7 @@
 - name: "[{{ select_crypto_backend }}] Generate parameter (check mode)"
  openssl_dhparam:
    size: 768
-    path: '{{ output_dir }}/dh768.pem'
+    path: '{{ remote_tmp_dir }}/dh768.pem'
    select_crypto_backend: "{{ select_crypto_backend }}"
    return_content: yes
  check_mode: true
@@ -13,7 +13,7 @@
 - name: "[{{ select_crypto_backend }}] Generate parameter"
  openssl_dhparam:
    size: 768
-    path: '{{ output_dir }}/dh768.pem'
+    path: '{{ remote_tmp_dir }}/dh768.pem'
    select_crypto_backend: "{{ select_crypto_backend }}"
    return_content: yes
  register: dhparam
@@ -21,7 +21,7 @@
 - name: "[{{ select_crypto_backend }}] Don't regenerate parameters with no change (check mode)"
  openssl_dhparam:
    size: 768
-    path: '{{ output_dir }}/dh768.pem'
+    path: '{{ remote_tmp_dir }}/dh768.pem'
    select_crypto_backend: "{{ select_crypto_backend }}"
    return_content: yes
  check_mode: true
@@ -30,39 +30,39 @@
 - name: "[{{ select_crypto_backend }}] Don't regenerate parameters with no change"
  openssl_dhparam:
    size: 768
-    path: '{{ output_dir }}/dh768.pem'
+    path: '{{ remote_tmp_dir }}/dh768.pem'
    select_crypto_backend: "{{ select_crypto_backend }}"
    return_content: yes
  register: dhparam_changed

 - name: "[{{ select_crypto_backend }}] Generate parameters with size option"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh512.pem'
+    path: '{{ remote_tmp_dir }}/dh512.pem'
    size: 512
    select_crypto_backend: "{{ select_crypto_backend }}"

 - name: "[{{ select_crypto_backend }}] Don't regenerate parameters with size option and no change"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh512.pem'
+    path: '{{ remote_tmp_dir }}/dh512.pem'
    size: 512
    select_crypto_backend: "{{ select_crypto_backend }}"
  register: dhparam_changed_512

 - copy:
-    src: '{{ output_dir }}/dh768.pem'
+    src: '{{ remote_tmp_dir }}/dh768.pem'
    remote_src: yes
-    dest: '{{ output_dir }}/dh512.pem'
+    dest: '{{ remote_tmp_dir }}/dh512.pem'

 - name: "[{{ select_crypto_backend }}] Re-generate if size is different"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh512.pem'
+    path: '{{ remote_tmp_dir }}/dh512.pem'
    size: 512
    select_crypto_backend: "{{ select_crypto_backend }}"
  register: dhparam_changed_to_512

 - name: "[{{ select_crypto_backend }}] Force re-generate parameters with size option"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh512.pem'
+    path: '{{ remote_tmp_dir }}/dh512.pem'
    size: 512
    force: yes
    select_crypto_backend: "{{ select_crypto_backend }}"
@@ -70,11 +70,11 @@

 - name: "[{{ select_crypto_backend }}] Create broken params"
  copy:
-    dest: "{{ output_dir }}/dhbroken.pem"
+    dest: "{{ remote_tmp_dir }}/dhbroken.pem"
    content: "broken"
 - name: "[{{ select_crypto_backend }}] Regenerate broken params"
  openssl_dhparam:
-    path: '{{ output_dir }}/dhbroken.pem'
+    path: '{{ remote_tmp_dir }}/dhbroken.pem'
    size: 512
    force: yes
    select_crypto_backend: "{{ select_crypto_backend }}"
@@ -82,21 +82,21 @@

 - name: "[{{ select_crypto_backend }}] Generate params"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh_backup.pem'
+    path: '{{ remote_tmp_dir }}/dh_backup.pem'
    size: 512
    backup: yes
    select_crypto_backend: "{{ select_crypto_backend }}"
  register: dhparam_backup_1
 - name: "[{{ select_crypto_backend }}] Generate params (idempotent)"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh_backup.pem'
+    path: '{{ remote_tmp_dir }}/dh_backup.pem'
    size: 512
    backup: yes
    select_crypto_backend: "{{ select_crypto_backend }}"
  register: dhparam_backup_2
 - name: "[{{ select_crypto_backend }}] Generate params (change)"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh_backup.pem'
+    path: '{{ remote_tmp_dir }}/dh_backup.pem'
    size: 512
    force: yes
    backup: yes
@@ -104,7 +104,7 @@
  register: dhparam_backup_3
 - name: "[{{ select_crypto_backend }}] Generate params (remove)"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh_backup.pem'
+    path: '{{ remote_tmp_dir }}/dh_backup.pem'
    state: absent
    backup: yes
    select_crypto_backend: "{{ select_crypto_backend }}"
@@ -112,7 +112,7 @@
  register: dhparam_backup_4
 - name: "[{{ select_crypto_backend }}] Generate params (remove, idempotent)"
  openssl_dhparam:
-    path: '{{ output_dir }}/dh_backup.pem'
+    path: '{{ remote_tmp_dir }}/dh_backup.pem'
    state: absent
    backup: yes
    select_crypto_backend: "{{ select_crypto_backend }}"
--- a/tests/integration/targets/openssl_dhparam/tasks/main.yml
+++ b/tests/integration/targets/openssl_dhparam/tasks/main.yml
@@ -9,7 +9,7 @@

 - name: Run module with backend autodetection
  openssl_dhparam:
-    path: '{{ output_dir }}/dh_backend_selection.pem'
+    path: '{{ remote_tmp_dir }}/dh_backend_selection.pem'
    size: 512

 - block:
@@ -24,12 +24,12 @@

 - name: Remove output directory
  file:
-    path: "{{ output_dir }}"
+    path: "{{ remote_tmp_dir }}"
    state: absent

 - name: Re-create output directory
  file:
-    path: "{{ output_dir }}"
+    path: "{{ remote_tmp_dir }}"
    state: directory

 - block:
--- a/tests/integration/targets/openssl_dhparam/tests/validate.yml
+++ b/tests/integration/targets/openssl_dhparam/tests/validate.yml
@@ -1,12 +1,12 @@
 ---
 - name: "[{{ select_crypto_backend }}] Validate generated params"
-  shell: '{{ openssl_binary }} dhparam -in {{ output_dir }}/{{ item }}.pem -noout -check'
+  shell: '{{ openssl_binary }} dhparam -in {{ remote_tmp_dir }}/{{ item }}.pem -noout -check'
  with_items:
    - dh768
    - dh512

 - name: "[{{ select_crypto_backend }}] Get bit size of 768"
-  shell: '{{ openssl_binary }} dhparam -noout -in {{ output_dir }}/dh768.pem -text | head -n1 | sed -ne "s@.*(\\([[:digit:]]\{1,\}\\) bit).*@\\1@p"'
+  shell: '{{ openssl_binary }} dhparam -noout -in {{ remote_tmp_dir }}/dh768.pem -text | head -n1 | sed -ne "s@.*(\\([[:digit:]]\{1,\}\\) bit).*@\\1@p"'
  register: bit_size_dhparam

 - name: "[{{ select_crypto_backend }}] Check bit size of default"
@@ -15,7 +15,7 @@
      - bit_size_dhparam.stdout == "768"

 - name: "[{{ select_crypto_backend }}] Get bit size of 512"
-  shell: '{{ openssl_binary }} dhparam -noout -in {{ output_dir }}/dh512.pem -text | head -n1 | sed -ne "s@.*(\\([[:digit:]]\{1,\}\\) bit).*@\\1@p"'
+  shell: '{{ openssl_binary }} dhparam -noout -in {{ remote_tmp_dir }}/dh512.pem -text | head -n1 | sed -ne "s@.*(\\([[:digit:]]\{1,\}\\) bit).*@\\1@p"'
  register: bit_size_dhparam_512

 - name: "[{{ select_crypto_backend }}] Check bit size of default"
@@ -34,10 +34,15 @@
      - dhparam_changed_to_512 is changed
      - dhparam_changed_force is changed

+- name: "[{{ select_crypto_backend }}] Read result"
+  slurp:
+    src: '{{ remote_tmp_dir }}/dh768.pem'
+  register: slurp
+
 - name: "[{{ select_crypto_backend }}] Make sure correct values are returned"
  assert:
    that:
-      - dhparam.dhparams == lookup('file', output_dir ~ '/dh768.pem', rstrip=False)
+      - dhparam.dhparams == (slurp.content | b64decode)
      - dhparam.dhparams == dhparam_changed.dhparams

 - name: "[{{ select_crypto_backend }}] Verify that broken params will be regenerated"